Terry J. Reedy added the comment:
It would be disconcerting if you went to this page looking for a builtin [and
had trouble finding it]
I agree with this premise. Since Idle, and I presume other IDEs, color code
apply, coerce, intern, and buffer as builtins indistinguishably from all the
Changes by Carlo Beccarini hackdiablo...@gmail.com:
Added file: http://bugs.python.org/file38307/functions.rst
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23512
___
Davin Potts added the comment:
The discussion in issue23484 is leading to a recommendation that the docs be
changed to reflect the actual behavior of multiprocessing's Lock and its close
relatives.
As far back as 2.6.9, calling release() on an unlocked threading.Lock triggered
a thread.error
Edward D'Souza added the comment:
I think putting them in a separate table is good, but I think it makes more
sense to appear right below the existing table at the top of the page. For
better or worse, these non-essential functions are still builtins in Python 2.
It would be disconcerting if
Yassine ABOUKIR added the comment:
For your information, this security issue has been assigned a CVE ID :
CVE-2015-2104
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23505
___
Yassine ABOUKIR added the comment:
Yes, exploiting this bug an attacker may redirect a specific vitim to a
malicious website, in our case evil.com
x = urlparse(evil.com)
///evil.com will be parsed as relative-path URL which is the correct expected
behaviour
print x
Akira Li added the comment:
On Windows behavior
http://stackoverflow.com/questions/23688492/oserror-errno-22-invalid-argument-in-subprocess
--
nosy: +akira
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue21619
Gregory P. Smith added the comment:
I missed that because i was looking for it to be called out under 2.7 os.stat()
docs rather than under 2.7's os.stat_float_times() which is a method nobody is
likely to read the documentation for as floats have been the default since 2.5.
The 2.7 docs are
New submission from STINNER Victor:
Currently, functions of the faulthandler module require a file-like object
(with a fileno() method). It would be nice to accept also file descriptors
(int).
Example of code using faulthandler which creates an useless file object just to
pass a file
STINNER Victor added the comment:
Only faulthandler_get_fileno() should be modified, but a new unit test should
be added.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23566
___
New submission from Gregory P. Smith:
Python 2.7.6 (default, Mar 22 2014, 22:59:56)
import os, stat
os.stat('/')
posix.stat_result(st_mode=16877, st_ino=2, st_dev=64513L, st_nlink=29,
st_uid=0, st_gid=0, st_size=4096, st_atime=1425341751, st_mtime=1424824650,
st_ctime=1424824650)
x
STINNER Victor added the comment:
It's already documented:
https://docs.python.org/dev/library/os.html#os.stat_result
For compatibility with older Python versions, accessing stat_result as a tuple
always returns integers.
--
nosy: +haypo
___
Yassine ABOUKIR added the comment:
When you directly type //evil.com or evil.com in Firefox URL bar you will
be redirect to evil.com and that is very known, read this :
http://homakov.blogspot.com/2014/01/evolution-of-open-redirect-vulnerability.html
Here is a video demonstration of the
Changes by Ned Deily n...@acm.org:
--
nosy: +gregory.p.smith
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23564
___
___
Python-bugs-list mailing
STINNER Victor added the comment:
Note: I found the bug while working on a patch for #22181.
My test is this shell script:
$ while true; do ./python -c 'import os, signal;
signal.setitimer(signal.ITIMER_REAL, 0.001, 0.0001);
signal.signal(signal.SIGALRM, lambda *args: print(., end=));
STINNER Victor added the comment:
This can be practically exploited this way :
http://example.com/login?next=/evil.com
Can you please elaborate on the exploit part?
In Firefox, the etc/passwd link shows me my local file /etc/passwd. Ok,
but how is it an issue?
//etc/passwd also
Akira Li added the comment:
pytz explicitly documents this case (crossing DST boundary). There is
tz.normalize() method.
the tzinfo object is responsible for handling daylight savings time. This
looks like a bug in pytz.
Are any of tzinfo methods even called during `before +
Ethan Furman added the comment:
Should __prepare__ be special-cased as a classmethod, like __new__ is? Is
there any reason to ever have __prepare__ /not/ be a classmethod?
--
___
Python tracker rep...@bugs.python.org
STINNER Victor added the comment:
urlparse(//evil.com)
ParseResult(scheme='', netloc='evil.com', path='', params='', query='',
fragment='')
I see evil.com in the netloc field, ok. But Firefox doesn't use Python to parse
and url, and typing //evil.com in the address bar converts the address
STINNER Victor added the comment:
Commit in the Linux kernel:
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c6e9d6f38894798696f23c8084ca7edbf16ee895
--
Here is a patch to use the new getrandom() syscall of Linux 3.17 in the Python
function os.urandom().
The
Changes by Carlo Beccarini hackdiablo...@gmail.com:
Removed file: http://bugs.python.org/file38305/functions.rst
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23512
___
Hammerite added the comment:
Here is an initial attempt at a patch that implements the new function.
Notes on this patch:
- The function as implemented here returns a string: Yes, No, or Maybe.
In light of the fact that Python now has enums, it is probably more appropriate
that unicodedata
STINNER Victor added the comment:
The change on Modules/_io/fileio.c is wrong: functions may return None with an
exception set. It is wrong because a function must return a result with no
exception set, or NULL and an exception set.
Attached patch fixes this issue.
--
Added file:
Raymond Hettinger added the comment:
I see no reason pure python code to have to detect and report such oddities.
Closing as not worth it.
--
resolution: - rejected
status: open - closed
___
Python tracker rep...@bugs.python.org
Martin Panter added the comment:
Do you think it would be enough to ensure the urlparse() result remembers
whether the empty “//” was present or not? In other words, something like the
following mockup (based on the Issue 22852 proposal). An example vunerable
program would help me understand
Changes by Martin Panter vadmium...@gmail.com:
--
nosy: +vadmium
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23560
___
___
Python-bugs-list
Nick Coghlan added the comment:
PEP 461 landed, restoring binary interpolation support:
https://hg.python.org/cpython/rev/8d802fb6ae32
There are also some relevant around standardising the C.UTF-8 locale currently
available on some Linux systems:
Fedora RFE:
Gregory P. Smith added the comment:
Haha, yes, that description and patch look correct. Thanks!
Fortunately this bug is low impact as this was just a sanity check and the
calling code from subprocess.py was already passing the correct data in.
An ideal regression test: An explicit unittest
Martin Panter added the comment:
Thanks for that link; the answer by Eryksun
https://stackoverflow.com/questions/23688492/oserror-errno-22-invalid-argument-in-subprocess#28020096
is particularly enlightening. Apparently EINVAL actually represents an
underlying broken pipe condition in
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
versions: +Python 3.3, Python 3.5
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23362
___
Changes by Arfrever Frehtes Taifersar Arahesis arfrever@gmail.com:
--
versions: +Python 2.7, Python 3.3, Python 3.5
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23367
___
STINNER Victor added the comment:
A few months ago, I modified Popen.communicate() to handle EINVAL on
Windows.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue21619
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +ezio.melotti
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23275
___
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
keywords: +easy
stage: - needs patch
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22933
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
stage: patch review - test needed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22801
___
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
stage: - needs patch
type: - enhancement
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22812
___
Georg Brandl added the comment:
The example is correct. r is a range(0, 20, 2), whose last element is 18.
--
nosy: +georg.brandl
resolution: - not a bug
status: open - closed
___
Python tracker rep...@bugs.python.org
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
keywords: +easy
stage: - needs patch
type: - enhancement
versions: +Python 2.7, Python 3.5
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23460
Serhiy Storchaka added the comment:
LGTM and I think it is worth to be applied to maintained releases.
--
nosy: +orsenthil
stage: - commit review
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue20059
Roundup Robot added the comment:
New changeset 596228491890 by Ethan Furman in branch 'default':
issue19075: add visual sorting algorithms to turtledemo; original code from
Jason Yeo
https://hg.python.org/cpython/rev/596228491890
--
nosy: +python-dev
Davin Potts added the comment:
Attaching a further revised patch for 3.4 and 3.5/default, now with cleaned-up
code style per the discussion in the review.
No changes are prompted for the patch to 2.7 as it only contained changes to
the docs and nothing code-related.
Thanks again goes to
Changes by Ethan Furman et...@stoneleaf.us:
--
assignee: - ethan.furman
resolution: - fixed
stage: patch review - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue19075
Benjamin Peterson added the comment:
True, but that could change and is not true in Python 2. I suppose we
could revert the change and add a static assertion.
On Mon, Mar 2, 2015, at 14:24, Serhiy Storchaka wrote:
Serhiy Storchaka added the comment:
Because isize is the size of real
New submission from Maxime S:
Observed Behavior:
$python3
Python 3.5.0a1+ (default, Mar 2 2015, 14:30:05)
[GCC 4.6.3] on linux
Type help, copyright, credits or license for more information.
f = open(test, w+)
f.write(Hello World)
11
f.seek(0)
0
f.read(5)
'Hello'
f.write( people)
7
STINNER Victor added the comment:
The attached patch attempts to clarify this by providing a different error
when the start character is invalid.
I dislike the patch. The error message invalid character in identifier is
correct. I don't want to modify so much code for a little better error
Barry A. Warsaw added the comment:
Ha! Apparently this bug broke coverage for the Mailman 3 source code:
https://bitbucket.org/ned/coveragepy/issue/360/html-reports-get-confused-by-l-in-the-code
--
___
Python tracker rep...@bugs.python.org
Changes by Barry A. Warsaw ba...@python.org:
--
nosy: +barry
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue19035
___
___
Python-bugs-list mailing
Roundup Robot added the comment:
New changeset 10b563c32f9d by Benjamin Peterson in branch '3.4':
link to the correct dis method or function (closes #23561)
https://hg.python.org/cpython/rev/10b563c32f9d
New changeset 760f222103c7 by Benjamin Peterson in branch 'default':
merge 3.4 (#23561)
STINNER Victor added the comment:
This issue is probably a duplicate of the issue #12215 (see also #12513 for the
codecs moduile).
--
nosy: +haypo
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23562
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +ezio.melotti
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23312
___
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +ezio.melotti
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23192
___
___
Thomas Roos added the comment:
works for me
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23330
___
___
Python-bugs-list mailing list
Ezio Melotti added the comment:
Agreed with what Georg said and I think the devguide can be update accordingly.
--
assignee: - docs@python
components: +Documentation
keywords: +easy
nosy: +docs@python
stage: - needs patch
___
Python tracker
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +benjamin.peterson
type: - enhancement
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22785
___
Changes by Serhiy Storchaka storch...@gmail.com:
--
resolution: - wont fix
stage: - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23541
___
Matt Bachmann added the comment:
Alrighty. I'll investigate and see if I can cut down the code some. If I can't
significantly I'll let the issue die quietly. I agree that it's a pretty
nitpick ticket.
I noticed it while doing some research into unicode and made the patch when I
saw how
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +loewis
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23330
___
___
Python-bugs-list
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
stage: - needs patch
type: - enhancement
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22813
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +ezio.melotti
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22831
___
___
New submission from Raphaël Bleuse:
Reading the documentation for ranges (see
https://docs.python.org/3.5/library/stdtypes.html#ranges), the example using a
negative index output is inconsistent with the range effective behaviour.
One can read:
r[-1]
18
while (in my understanding) it
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
components: +Unicode
nosy: +ezio.melotti, haypo, serhiy.storchaka
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23367
___
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +Joshua.Landau, neil.g
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue22942
___
___
Serhiy Storchaka added the comment:
Agreed with Ezio. Adding 7 new public names just to enhance one rare error
message looks too hight cost. I am inclined to left all as is. Original message
is not so bad.
--
___
Python tracker
Serhiy Storchaka added the comment:
my be change the pattern to '([^\n]+)'?
--
nosy: +serhiy.storchaka
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23330
___
New submission from Ezio Melotti:
The Doc/library/stdtypes.rst page describes in detail the built-in types and
their methods. As suggested in #21777 (see the comments on Rietveld), it might
be a good idea to group the documentation of some similar methods, such as
{r|l|}just, {r|l|}strip,
Ezio Melotti added the comment:
Zach, Ezio - if there are any other refactorings from the reviews that
you'd like to pursue, consider pulling them out to separate issues so
we don't forget about them.
See #23560.
--
___
Python tracker
New submission from Novice Live:
it is likely that the author of dis.rst omitted two non-trivial preceding dots.
in the 'Bytecode analysis' section,
both :meth:`dis` and :func:`dis` have no preceding dots before 'dis'.
the dots may be trivial elsewhere, but they are non-trivial here.
Bruno Cauet added the comment:
Here are the operations being emitted (line, macro used and eventual argument):
f = lambda: (yield 5)
3487: ADDOP_O LOAD_CONST e-v.Num.n
3472: ADDOP YIELD_VALUE
1907: ADDOP_IN_SCOPE POP_TOP
4349: ADDOP_O LOAD_CONST Py_None
4350: ADDOP RETURN_VALUE
1457: ADDOP_O
Changes by Bruno Cauet brunoca...@gmail.com:
Added file:
http://bugs.python.org/file38299/0002-lambda-generator-fix-try-to-add-a-dis-test.patch
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23192
Serhiy Storchaka added the comment:
re.split() with the r'(?CA)(?=GCTG)' pattern raises a ValueError in 3.5 (see
issue22818). In future releases it could be changed to work with zero-width
patterns (such as lookaround assertions).
--
resolution: - wont fix
stage: - resolved
status:
Serhiy Storchaka added the comment:
Additional check is not for free.
$ ./python -m timeit -s from collections import Counter; a = Counter(); b =
Counter(range(10)) -- a = b
Unpatched: 10 loops, best of 3: 8.4 usec per loop
Patched: 10 loops, best of 3: 9.7 usec per loop
--
Ezio Melotti added the comment:
While the request is reasonable, the patch seems to touch quite some code.
Since this is just to improve an error message in a somewhat obscure corner
case, I'm not sure it's worth applying it.
--
nosy: +serhiy.storchaka
stage: - patch review
versions:
Mark Dickinson added the comment:
I don't think we should close: the documentation as written explicitly says
that the rules apply to both Decimal and float: The available presentation
types for floating point and decimal values are But the details listed
for 'g' are incorrect. We
Changes by Ezio Melotti ezio.melo...@gmail.com:
--
nosy: +ezio.melotti
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue433030
___
___
Steve Dower added the comment:
No current reasons I'm aware of (apart from not having a working up-to-date
Windows buildbot right now - blocked on #23524) so I'd say go ahead. Pull it
out and see what breaks.
The fact that the comment says pycapsule.o and not pycapsule.obj probably
means
Steve Dower added the comment:
Glad you got it sorted out. I've done exactly the same thing too.
The 3.5 installer is designed to have no impact on earlier versions, and also
has different default directories for 32-bit vs. 64-bit, which will help
prevent these problems in the future.
Larry Hastings added the comment:
You give me too much credit. I'm the chimp who put it there in the first
place. Though, admittedly, it was a copypaste job based on the ancient
CObject.
My guess is this was very helpful in 1.4, or something. ;-)
--
Roundup Robot added the comment:
New changeset 7401a28d3d41 by Steve Dower in branch '3.4':
Issue #18382: Zero-length messages are consumed by ReadFile on Windows 8 and
later
https://hg.python.org/cpython/rev/7401a28d3d41
New changeset 6ccbcf1df7bd by Steve Dower in branch 'default':
Issue
Steve Dower added the comment:
The _WINSOCK_DEPRECATED_NO_WARNINGS question is still open, but the rest of the
deprecations should be clear now.
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23451
New submission from Serhiy Storchaka:
Proposed patch optimizes utility functions in the urllib.parse module.
$ ./python -m timeit -s from urllib.parse import splittype --
splittype('type:'+'x'*1000)
Unpatched: 10 loops, best of 3: 17 usec per loop
Patched: 10 loops, best of 3: 15
R. David Murray added the comment:
Don't break backward compatibility. It's not like this was reported as a bug
that caused a problem for real world code, it is about theoretical consistency.
The risk of breaking someone code is much higher than the benefit of any such
consistency, when
Changes by R. David Murray rdmur...@bitdance.com:
--
resolution: - duplicate
status: open - closed
superseder: - TextIOWrapper: issues with interlaced read-write
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23562
Changes by Steve Dower steve.do...@microsoft.com:
--
resolution: - fixed
stage: patch review - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue18382
___
Alex Shkop added the comment:
The issue occurs only if C implementation of _warnings is available. It is
caused by re-use of global filters variable from _warnings when warnings is
being re-imported.
So warnings modifies _warnings.filters on first import. Then, when you import
warnings again
Roundup Robot added the comment:
New changeset 57e2549cc9a6 by Steve Dower in branch 'default':
Issue #23451: Update pyconfig.h for Windows to require Vista headers and remove
unnecessary version checks.
https://hg.python.org/cpython/rev/57e2549cc9a6
--
nosy: +python-dev
Steve Dower added the comment:
We'd need a contributor agreement from Jon anyway, so unless he rejoins this
thread and is willing to sign that, there's little point looking at the patch.
--
___
Python tracker rep...@bugs.python.org
Roundup Robot added the comment:
New changeset 84025a32fa2b by Benjamin Peterson in branch '3.3':
fix possible overflow bugs in unicodedata (closes #23367)
https://hg.python.org/cpython/rev/84025a32fa2b
New changeset 90f960e79c9e by Benjamin Peterson in branch '3.4':
merge 3.3 (#23367)
Serhiy Storchaka added the comment:
Was fixed as part of issue23446.
--
resolution: - fixed
stage: - resolved
status: open - closed
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23368
___
New submission from Hisham Muhammad:
In Modules/_posixsubprocess.c, (the helper module for Lib/subprocess.py)
there's a function called _sanity_check_python_fd_sequence which checks, as its
comment says, if the fds in the sequence are all positive and sorted.
The check to verify if it is
Serhiy Storchaka added the comment:
Actually integer overflow in the line
space = (isize 10 ? 10 : isize) + isize;
is not possible.
Integer overflows in PyMem_Malloc were fixed in issue23446.
--
___
Python tracker rep...@bugs.python.org
Changes by Serhiy Storchaka storch...@gmail.com:
--
assignee: - serhiy.storchaka
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23362
___
___
Changes by Serhiy Storchaka storch...@gmail.com:
--
resolution: fixed - out of date
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23368
___
___
R. David Murray added the comment:
Not to get into an API argument, but rather to convey some Python philosophy as
I understand it: there *is* often a distinction in Python between the value
'None' and a boolean-False-value like ''. It is often the case in Python APIs
that None means
Roundup Robot added the comment:
New changeset b22755f8ab5f by Larry Hastings in branch 'default':
Issue #21293: Remove unnecessary capsule hack.
https://hg.python.org/cpython/rev/b22755f8ab5f
--
nosy: +python-dev
___
Python tracker
Larry Hastings added the comment:
Yeah, I went ahead and checked this in. I'm living life on the *edge*.
To the EXTREME!
--
assignee: - larry
resolution: - fixed
stage: patch review - resolved
status: open - closed
___
Python tracker
Changes by Serhiy Storchaka storch...@gmail.com:
--
assignee: - serhiy.storchaka
nosy: +serhiy.storchaka
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23368
___
Serhiy Storchaka added the comment:
May be apply the fix to 3.3?
--
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23446
___
___
Python-bugs-list
Demian Brecht added the comment:
Aside from that, however, I see request.('GET', '/') and request.('GET', '/',
'') as clearly *different* from an API call standpoint, so I would in any
case preserve the existing behavior.
I do understand the case that the the two examples look different
Benjamin Peterson added the comment:
Why can't (isize 10 ? 10 : isize) + isize overflow?
--
nosy: +benjamin.peterson
___
Python tracker rep...@bugs.python.org
http://bugs.python.org/issue23367
___
Andy Maier added the comment:
I have posted v14 of the patch (for the 3.5 'default' branch), based on
Martin's v13. v14 addresses all comments Martin made, as described in my
responses to them (see patch set 10).
On Issue 4395: That issue should be pursued in addition to this issue; it seems
1 - 100 of 121 matches
Mail list logo